Troy, If you don't know Linux, you should learn it. There is a bootable Linux Distribution called Backtrack Linux (http://www.backtrack-linux.org) I haven't used this in quite some time, but found it had a lot of the most useful tools and is well documented . I'd also learn Metasploit, I see their name come up most often. It utilizes known vulnerabilities to deliver payloads gain further access. I haven't quite learned this as it can be complicated. BJ On Thu, 2012-08-16 at 13:01 -0400, Troy D Murray wrote: > Afternoon everyone, > > > I'm thinking about doing some penetration t > esting for our public facing Internet servers and web applications. > Just curious if others here on campus have done this type of testing > and would be willing to share, either off-list or on-list, feedback or > experiences. Who did you use, and how was it, would you recommend > them, etc? > > > Thanks, > > Troy Murray > Michigan State University > College of Medicine > Life Science > 1355 Bogue St, B-136D > East Lansing, MI 48824 > E: [log in to unmask] > P: 517-432-2760 > F: 517-355-7254 > RedHat 5 Certified Technician > RedHat 5 Certified Systems Administrator > HL7 V2.6/2.5 Certified Control Specialist > >